📦 A\+hrd

CVE-2025-12870 is an authentication abuse vulnerability in a+HRD software developed by aEnrich that allows unauthenticated remote attackers to send crafted packets to obtain administrator access token...

CVE-2025-12871 is an authentication abuse vulnerability in a+HRD software that allows unauthenticated remote attackers to craft administrator access tokens and gain elevated system privileges. This af...

CVE-2025-0585 is a critical SQL injection vulnerability in a+HRD software from aEnrich Technology that allows unauthenticated remote attackers to execute arbitrary SQL commands. This enables attackers...

CVE-2023-20853 is a critical deserialization vulnerability in aEnrich Technology a+HRD's MSMQ asynchronous message processing. Unauthenticated remote attackers can exploit this to execute arbitrary sy...

CVE-2022-26676 is a critical privilege escalation vulnerability in aEnrich a+HRD software where unauthenticated remote attackers can upload and execute malicious scripts via API functions. This allows...

This is a stored cross-site scripting (XSS) vulnerability in a+HRD software developed by aEnrich. It allows administrators to inject malicious JavaScript that executes automatically when users load af...

This CVE describes a reflected cross-site scripting (XSS) vulnerability in a+HRD software from aEnrich Technology. Unauthenticated attackers can execute arbitrary JavaScript in users' browsers through...